SecuriteInfo[.]com[.]Win32[.]PWSX-gen[.]26405[.]31352[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

SecuriteInfo.com.Win32.PWSX-gen.26405.31352.exe
Size

13KB
MD5

bd9f1c0318abae1d0d3ed5122f2badb5
SHA1

b7a42c363a5d47f2ad1d76a7d9016d77ee46b676
SHA256

bcf6b7f0265de5f8d794c843eec56bfa6e2258abbc2e03f80ee0a715a5d5dfe5
SHA512

5b19afb43b026e3298f2763a3e71ebcad1b38141ceb1c76e82102a98d4f7e7c5af4e87cdb8540d26d7622630007b600422c377db3bd8997f836c4eb19c2784fc
SSDEEP

192:fT4BIfbw0nMy+JK9wqZeJnpWMzN4PPOoynJ+LvRJRTlU7b0ZRl55y0CMP:fXfbLp+JKXeZpWMzSXOQKMk0C

Score

N/A

Malware Config

Signatures

Files

SecuriteInfo.com.Win32.PWSX-gen.26405.31352.exe
.exe windows x86

d313d87b9888f9a05c3d3b3d3c1801f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcmp
_exit
__p___winitenv
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
exit
__set_app_type
_except_handler3
_controlfp
_XcptFilter

imm32

ImmCreateSoftKeyboard
ImmGetGuideLineW
ImmEnumRegisterWordW
ImmRequestMessageA
ImmConfigureIMEW
ImmGenerateMessage

kernel32

HeapFree
CreateFileW
ReadFile
HeapAlloc
GetProcessHeap
SetEvent
WaitForSingleObject
VirtualAlloc
EnumSystemCodePagesW
GetConsoleWindow
GetFileSize
CreateEventW

ole32

CoInitializeEx
CoUninitialize
WriteFmtUserTypeStg
SNB_UserMarshal
OleInitializeWOW
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterSurrogate
CoFreeUnusedLibraries
WriteStringStream
CoMarshalInterface
CLSIDFromString

mpr

WNetUseConnectionW
WNetAddConnectionW
WNetOpenEnumA
WNetEnumResourceA
WNetCancelConnectionA

wsock32

getservbyport
ord1115
closesocket
getpeername
ord1106
listen
WSAAsyncSelect
recv
bind

msvfw32

ICInstall
StretchDIB
ICOpenFunction
ICSeqCompressFrameEnd
ICSeqCompressFrame

avicap32

capGetDriverDescriptionW

loadperf

UnloadPerfCounterTextStringsA
LoadPerfCounterTextStringsW
UnloadPerfCounterTextStringsW

msacm32

acmFormatChooseW
acmDriverID
acmDriverClose
acmDriverDetailsA
acmFilterEnumA

odbc32

ord250
ord155
ord257
ord127

msi

ord46
ord153
ord70
ord19
ord89
ord36

user32

ShowWindow

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d313d87b9888f9a05c3d3b3d3c1801f0

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

imm32

kernel32

ole32

mpr

wsock32

msvfw32

avicap32

loadperf

msacm32

odbc32

msi

user32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 1024B - Virtual size: 628B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 1024B - Virtual size: 628B